Attribute usages / syntax

PD paul at ranahminang.net
Fri Jun 8 16:45:24 CEST 2007 

>
>(please don't hijack other people's threads - start a new one!)

I though... I just hit reply and change the subject...
cause... I cann't remember the list address as I subscribe for some
others too.

>> I do need some example and explanation about how to used the following
>> attributes :
>
>> + session-time
>
>You mean Session-Timeout?

yeah... sorry for typo..
I just found it by myself.. it should put it radreply table, not radcheck.

>> + login-time
>> + called-station-id
>>
>> Is the above attributes need some configuration script on radiusd.conf?
>
>All supported natively.

Thx.. but I still can not find how to use login-time. :(

>> I do try to used :
>> +----+----------+-----------------+----+-------------------+
>>
>> | id | UserName | Attribute       | op | Value             |
>>
>> +----+----------+-----------------+----+-------------------+
>>
>> | 11 | demo     | Auth-Type       | := | Local             |
>
>Don't set Auth-Type. This mantra is used very frequently on this list! Delete 
>this line.
Hm... why ?
I though FR will see password user at /etc/password if we don't define
local. Also... I need to change this Auth-Type value become Reject if we
need to block this user for some reason.


>> | 12 | demo     | Password        | == | 123456            |
>
>The operator should be :=, not ==.

I read some thread regarding this.. and tried them.
In my case... user can not login if I change operator become :=

>You didn't report which FreeRADIUS version you are using, in any case the name 
>of the attribute is wrong:
>prior to version 1.1.6, the Attribute "User-Password" was supposed to be used, 
>since 1.1.6 it is "Cleartext-Password".

Just check it out... Freeradius 1.1.4


>> | 39 | demo     | Login-Time      | == | Mo-Sa1900-0800|Su |
>
>I've never seen this syntax for specifying Login-Time before. Where did you 
>get that from? It looks very odd in a radcheck table...

Hm... see http://www.freeradius.org/radiusd/doc/README
you can find the example of Login-Time attribute.

>> | 42 | demo     | Session-Timeout | == | 1800              |
>
>Here as well, I think the operator must be := not ==.

will try later as it just work when I move it to radreply.

Some other comments please....

TIA

Paul

More information about the Freeradius-Users mailing list